jafoca's starred repositories
ScoutSuite
Multi-Cloud Security Auditing Tool
awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
fuxploider
File upload vulnerability scanner and exploitation tool.
OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
awslambdaproxy
An AWS Lambda powered HTTP/SOCKS web proxy
SSRF_Vulnerable_Lab
This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
0xsp-Mongoose
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.
PentestHardware
Kinda useful notes collated together publicly
celerystalk
An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
GatherContacts
A Burp Suite Extension to pull Employee Names from Google and Bing LinkedIn Search Results
static-files
A collection of static files maintained by the Sublime team, primarily used for phishing defense.
Hornets-Nest
Purple Team Security
lambda-webbugs
A proof of concept for delivering webbugs via AWS lambda